qemu
Page content
- Author: kikadf
- Vulnerable: 1.5.2-3arcturus6
- Unaffected: 1.5.2-3arcturus7
A flaw was found in the way guest provided parameter validation was performed in vmware-vga driver in rectangle handling functionality. bits_per_pixel that are less than 8 could result in accessing non-initialized buffers later in the code due to the expectation that bytes_per_pixel value that is used to initialize these buffers is never zero.